The Security Operations - Get Running Processes workflow is a high-level workflow independent of integrations. It retrieves a list of running processes on a configuration item (CI) from a host. Use it to fulfill an integration, such as Carbon Black, or for a Windows-based security incident.

The Security Operations System Command Integration - Get Running Processes workflow retrieves the running processes of a configuration item when added or updated to a Windows or Unix-based security incident in the Analysis state.